The goal of PCI 10.3.4 and PCI 11.5.2 is to ensure the integrity of critical logs from the PCI environment and ensure that changes to files do not allow a breach of PCI data. While PCI 11.5.2 calls for file integrity monitoring software such as CimTrak to look for file changes at least weekly, the true integrity of your PCI environment requires much more frequent monitoring.
CimTrak allows you to exceed the minimum frequency for file integrity monitoring required by PCI 11.5.2 and gives you added peace of mind that your PCI environment is secure and in a state of constant integrity. CimTrak makes compliance easy by providing complete reporting on changes and critical configurations.
Deploy a change detection mechanism (for example, file integrity monitoring tools) to alert personnel to unauthorized modification of critical system files, configuration files, or content files, and configure the software to perform critical file comparisons at least weekly.